Vulnerabilities > CVE-1999-1033 - Denial of Service vulnerability in Outlook Express POP

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

exploit available

NVD

Published: 1999-05-11

Updated: 2016-10-18

Summary

Microsoft Outlook Express before 4.72.3612.1700 allows a malicious user to send a message that contains a .., which can inadvertently cause Outlook to re-enter POP3 command mode and cause the POP3 session to hang.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Outlook Express 4.27.3110.1 Microsoft Outlook Express 4.72.3120.0 Microsoft Outlook Express - Microsoft Outlook Express 4.0 Microsoft Outlook Express 4.01 Microsoft Outlook Express 4.5 Microsoft Outlook Express 4.72.2106.4 Microsoft Outlook Express 4.72.3612.1700	9

Exploit-Db

description	Microsoft Outlook Express 4.27.3110/4.72.3120 POP Denial of Service Vulnerability. CVE-1999-1033. Dos exploit for windows platform
id	EDB-ID:19207
last seen	2016-02-02
modified	1999-05-11
published	1999-05-11
reporter	Miquel van Smoorenburg
source	https://www.exploit-db.com/download/19207/
title	Microsoft Outlook Express 4.27.3110/4.72.3120 POP Denial of Service Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References